sicua/dist/analyzers/security/detectors/ConsoleLoggingDetector.d.ts

A tool for analyzing project structure and dependencies

/**
 * Detector for console logging of sensitive data
 */
import { BaseDetector } from "./BaseDetector";
import { Vulnerability } from "../types/vulnerability.types";
import { ScanResult } from "../../../types";
export declare class ConsoleLoggingDetector extends BaseDetector {
    private static readonly CONSOLE_PATTERNS;
    constructor();
    detect(scanResult: ScanResult): Promise<Vulnerability[]>;
    /**
     * Validate if a pattern match represents actual sensitive console logging
     */
    private validateConsoleMatch;
    /**
     * AST-based analysis for console logging detection
     */
    private analyzeASTForConsoleLogging;
    /**
     * Find all console method call expressions
     */
    private findConsoleCallExpressions;
    /**
     * Check if method name is a console logging method
     */
    private isConsoleMethod;
    /**
     * Analyze console call for sensitivity
     */
    private analyzeConsoleSensitivity;
    /**
     * Extract console method name from call expression
     */
    private getConsoleMethodName;
    /**
     * Extract sensitive variable names from an argument expression
     */
    private extractSensitiveVariables;
    /**
     * Check if variable name suggests sensitive data
     */
    private isSensitiveVariableName;
    /**
     * Check if variable name is explicitly sensitive (high confidence)
     */
    private isExplicitlySensitive;
    /**
     * Check if variable name is potentially sensitive (medium confidence)
     */
    private isPotentiallySensitive;
    /**
     * Extract function name from AST node context
     */
    private extractFunctionFromAST;
}